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1. INTRODUCTION 

Information security (IS) is used to prevent unauthorized access to information and perform various 
operations on such information, such as the use, disclosure, disabling, destruction or modification of such 
information [1]-[3]. IS has many objectives in relation to the protection of information against any risks to 
which such information may be exposed. The type of risk to which the data is exposed varies by application 
[4]-[6]. However, The proposed security of low-energy adaptive clustering hierarchy (LEACH) protocol 
(SLEACH) to construct a secure wireless sensor networks (WSN) clustering model [7]-[9]. It purposes to 
avoid sinkholes, forwarding with care, and SLEACH in general, are limited by system memory, resulting in 
network efficiency reduction and a shorter lifespan. To overawed the complexity and difficulty of traditional 
encryption organizations in WSNs have a limited amount of storage space, the advanced encryption standard 
(AES) and elliptic curve cryptography (ECC) algorithms are used in [10] to reduce the complexity and 
exploit the advantages of these algorithms. In WSNs, ECC is used to create with sharing the key. To protect 
the aggregation with authentication scalable data management, analysis, and visualization (SDAV) is 
proposed [11], [12]. The researchers select the ECC over conventional asymmetric algorithms because of its 
low key and performance in terms of simulation and capacity. The aggregator gathers in SDAV for its 
members' encrypted data, decrypts it, averages it, and then returns the result to them. Secure enhanced data 
aggregation (SEDA) based on ECC was used by another secure in [13]. SEDA-ECC is based on the concepts 
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of privacy encryption algorithm for homomorphic technique. This system has great security outcomes, 
particularly when it comes to node exploitation attacks. But, The key challenges are the necessary memory 
capacity and energy consumption. For the energy cost of communication in WSNs [14], the authors 
suggested a cryptography to secure data transmission in WSNs routing architecture elliptic curves Diffie 
Hellman algorithm -elliptic curve digital signature algorithm (ECDH-ECDSA) key exchange and verify that 
it must be favored in cases where a trusted third party is accessible. Therefore, When it comes to calculating 
the cost of cryptographic protocols on sensor nodes, monitoring should be taken into account. In this paper, 
we proposed the ECDH-RSA an enhanced encryption algorithm plan based on ECDH and RSA in order to 
ensure data transfer security in WSN to overcome these limitations of various articles with dynamically 
clustered sensor nodes, The biggest drawbacks are a finite quantity of memory and the possibility of a single 
node failure. For compromise communication lines, the attacker can compromise many more nodes. 
Furthermore, the decryption algorithm is not suited for encrypting large amounts of data. The goal is to have 
the least amount of impact on the network's lifecycle, chessboard clustering routing method (CCRM) and 
ECDH is used to produce public and private keys for sensor nodes, and is used to find the most suitable 
sensor nodes as cluster heads to relay the message to the base station. 

The suggested encryption method is based on CCRM, which employs the chessboard clustering 
algorithm (CC) to select the best network structure for lowering energy consumption after each round. 
CCRM is written at section 3. The following is how the rest of the paper is structured: The approach of this 
paper is clarified in section 2. The structure of the chessboard clustering routing protocol is showed in section 3. 
Our proposed solution for securing data clustered sensors in WSN is discussed in section 4. Simulation 
experimental findings and contribution are discussed in section 5. A summary finishes section 6 of this work. 


2. METHODOLOGY 

Figure 1 depicts the stages of our planned project. The first phase entails using CCRM to build a 
network topology that reduces energy fatigue. Then, to ensure secure data flow from sensor nodes to the BS, 
the proposed encryption schema is implemented. The next sections go over each of these phases in depth. 


Randomly Distributed Sensors 
as Initialize Network 


Use CCRM for Dynamic 


Clustering Structure 


The Proposed security Schema 
Parameters (ECDH and RSA) 
Cryptography 


Secure Data Transmission 


Figure 1. Developing the secure data transfer technique 


3. THE CHESSBOARD CLUSTERING ROUTING PROTOCOL 
In this part, the chessboard clustering algorithm is used to suggest heterogeneous sensor networks. 
We will employ the following two types of sensors: 
— The usage of a restricted number of powerful high-end sensors is referred to as an H-sensor (cluster 
head). 
— The term "L-sensor" refers to the employment of a variety of low-cost (basic) sensors. 


3.1. Cluster deployment 

We introduce our heterogeneous wireless sensor networks (HWSNs) checkerboard clustering 
approach in this part for heterogeneous sensor networks. In the sensor network, chessboard sensors are 
employed. The sensor network is divided into several small, equal-sized cells, as shown in Figure 2, with 
adjacent cells colored in various hues (white/black). H-sensors and L-sensors are expected to be distributed 
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evenly and randomly in this area. H-sensors, on the other hand, should be installed with greater care to ensure 
that all L-sensors are covered. That is, at least one cluster head can be heard by each sensor. 


Figure 2. The chessboard clustering scheme 


3.2. The partition method for clustering 

Cluster partition is a technique for homogeneous networks that has been extensively researched 
[15]-[17], and for heterogeneous networks [18], [19]. First, Only the H-sensors in white cells are active 
during the initiation period, whereas the H-sensors in black cells are turned off. All of the L-sensors are 
working. In white cells, clusters form around H-sensors, and these H-sensors become cluster heads. Later, 
when H-sensors in white cells run out of energy, the clusters are formed around the H-sensors in black cells 
in the same way. The cluster partition concept will be described in terms of the H-sensors in the white cells. 
In turn, broadcast hello messages based on the H-sensors' IDs and their locations, starting with the H-sensor 
with the smallest ID. Each L-sensor will then build a list of the H-sensors it has heard from, or whose 
messages it has successfully received. The broadcast's transmission range is large enough, based on received 
signal strength, for most L-sensors to receive hello messages from multiple H-sensors. The cluster leader is 
then chosen by each L-sensor as the H-sensor whose hello message has the best signal strength. After this, 
each L-sensor will recognize which H-sensor it belongs to and will favor the H-sensor at the top of the list. 
The H-sensor then begins to determine which sensors should be included in its cluster. We just discuss it for 
cluster 1 because it is the same for all clusters. H-sensor 1, abbreviated H1, will send a message that says "All 
sensors within a reasonable distance of me should report to me as the preferred cluster head". Following 
that, each eligible L-sensor will deliver a packet to H;, this contains the ID as well as the location of the ID. 
After all, L-sensor has reported, H; will add them to a list L and broadcast an acknowledgment packet to 
them. The sensor in L with the least ID is then asked by H;, say S;, to send a message to sensors asking them 
to report to S; if they: i) H; is the best cluster head to use.; ii) S; has conveyed this message to H7; and iii) H; 
has not acknowledged $7. 

All of these L-sensors will pay attention to S;, and S; will inform H; about these L-sensors. H; will 
then ask another sensor in L to add these newly identified sensors to L, say S2, to follow in the footsteps of S, 
and so forth, until there are no more sensors to discover. It is undeniable that, after this, H; will discover 
every sensor that has chosen H; as their preferred cluster head and has a path to H;. 

After H; has finished, in the same way, H2 can discover its sensors, then H3, H4 until the last H- 
sensor. When the last H-senor has completed his work, we may claim that the first round of discovery is 
finished. It's worth noting that after the first round, the majority of L-sensors have most likely previously 
been detected by the favored H-sensors. However, some L-sensors may have yet to be discovered because 
they lack a path to their preferred H-sensor. Such L-sensors are called the orphan sensors. To assist orphan 
sensors in locating the H-sensor, a second phase of discovery is required, in which each orphan sensor 
broadcasts a message stating that it saying that "Any non-orphan sensor who receives this message is 
welcome to add me to their cluster". The first non-orphan sensor to reply will inform its H-sensor of the new 
discovery. After this, we may claim that all L-sensors in the white cell have discovered the H-sensors. 

As an example, Figure 3 depicts a very basic network, H; and Hz are the cluster heads, and there are 
10 sensors in all. The transmission distance of the cluster heads is DH that is only H; can be heard by sensors 
S; to Ss, while Hz can only be heard by sensors S7 to So. Both H; and H2 can be heard by S6, although it is 
considered that H's signal is stronger. A sensor can send a packet to another node if it is capable of doing so, 
there is an edge between them. At first, Figure 4 shows how H; and H? will broadcast their signals in turn. 
Following that, H; will be the chosen cluster head for S; to S6, and H2 will be the preferred cluster head for $7 
to S19. Next, H; will look for sensors that can communicate with it directly. Because they are within D of H;, 
it will send a message, and S; and S2 will respond, as shown in Figure 5(a). After this, as demonstrated in 
Figure 5(b), S; will discover $3, S4, and Ss. Next, H2 will discover sensors $7 to S;o in a similar way, as shown 
in Figure 6(a). Ss is an orphan since it chose H; as its cluster head of choice. However, it is unable to 
communicate with any sensor that has a connection to H;. Thus, Ss will send a message to S7, who will add S6 
to the H2 cluster, as shown in Figure 6(b). 
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Figure 3. A simple network of cluster partition 


Figure 5. Because they are within D of H1, it will send a message: (a) S; and S2 respond H's message and 
(b) S; discovers $3, S4, and Ss5 


(a) (b) 


Figure 6. Described the cenarios to join clusters as: (a) H2 discovers S7 to Si. and (b) S6 joins the cluster of H2 
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4. ENCRYPTION ALGORITHMS (ECDH AND RSA) 
4.1. Elliptic curves Diffie-Hellman (ECDH) 

In a variety of cryptographic contexts, elliptic curves were already in use worked independently on 
this project [20]-[23]. At that time, integer factorization and primality proof are two examples. ‘Domain 
parameters’? ECC is a good example of a constant like this. Unlike private key cryptography, public key 
cryptography does not require the communication parties to disclose a secret, but it is substantially slower. 
An elliptic curve can be conceived of as being given by an affine equation of them for the purposes of 
encryption: 


y? =x? +ax +b (1) 


Where a and b are elements of a finite field containing p elements, and p is a prime greater than 3. 
(The equations for binary and ternary fields differ slightly). For every L-sensor in the network, the initial step 
before data transfer between the L-Sensor, ECDH, and a base point p that sits on the curve must be known. 
The collection of ordered pairs (x, y) having coordinates in the field and such that x and y satisfy the relation 
given by the equation describing the curve is the set of points on the curve. A group is also formed by a set of 
points on an elliptic curve that have coordinates in a finite field, and the procedure is as follows: to increase 
the curve by two points Q4 and Q, together. Then a straight line is drawn through the curve to find the third 
point of intersection R,. Then point R, is reflected along the X-axis to obtain (—R,). That is to say, the total 
of Q,; and Q, results (—R,). This group operation's concept is that the three points Q4, Q2, and R4 Lie down in 
a straight line, and the points that sum up to zero as a result of a function intersecting a curve as shown in 
Figure 7 [22]. 


Q; + Q2 =-R, 


Figure 7. Group law on an elliptic curve 


Because the majority of wireless sensor environments are unsecured and difficult to connect, it's 
difficult to reliably exchange keys in them. One of the elliptic curve types that offers service or solves the 
difficulty outlined is the Diffie-Hellman key. When two parties exchange keys, but those keys are subjected 
to particular processes by the same party after the switch until it becomes a key encryption by that party. 
The difficulty of guessing the type of operation and the digits in which the layer of inquiry led to this exit is 
the principle of power in the Diffie-Hellman key [22]. 

Therefore, it’s crucial to get the group operation up and running as efficiently as possible. Many 
options have been considered, however how to optimize the L-main sensor's group operation is typically 
influenced by the underlying system [20], [22]. That some points on an elliptic curve with affine coordinates, 
as defined above, must be represented. Then to add two Q, = (x1, y,) and Q, = (x2, Y2), where x, + x3, it 
is necessary to get the slope of the line that passes through them: 


A= (V2 -V1)/(%2 = x1) (2) 


This necessitates division in the limited field beneath. Then figure out where the line intersects the 
curve for the third time, it is found that (—R,) = (x3, Y3), where: 


X3 = A*-— x, — xp (3) 


for the finite field (P + 2 or 3), forming the sum necessitates one division, one squaring, and one 
multiplication, when two affine points with different x —coordinates are combined, are occasionally utilized. 
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Triples of coordinates are used in weighted projective coordinates (x,y,z), corresponding to the affine 
coordinates (x/2Z,,y/Z3) whenever z + 0. Weighted projective coordinates have the advantage of allowing 
point addition on an elliptic curve to be done in 16 field multiplications instead of all field divisions [20], [22]. 
The steps of the ECDH algorithm are as follows: 
— Select a number (P) which must be primary and larger than 3. 
— Select two numbers (a,b). Where ((4a° + 27b?)mod P # 0). 
— Find the set of points (G) on the elliptic curve through this equation y? = x? + ax + b over Z. The 
addition rule: 
i. P+Q=Q+P forall PeE(Zp) 
i. if P= (x, y)e E(Zp), then (x,y) + (x%1,—-y) = Q 
(x1, —y) is denoted by —P, and is called the negative of P; that —P is indeed a point on the curve. 
iii. Let P= (x1,y1) E E(Zp) and Q; = (2, y2) E E(Zp), where P + —Q. 
Then P + Q = (x3, y3), where: 


Xs = 4-4- xX (4) 
Y3 = A(x, — x3) — Yı (5) 
andA = (yz — y1)/(x2 = x1) if P#Q (6) 
A= (3x? + a,)/2y, if P=Q (7) 


Then a random point is chooses from set of points (G) from set of points: 
— Choice of a large number n. 
— User a key generation: 
i. Select privet n, with condition na <n 
ii. Calculate public p4 


Pa = na XG (8) 


— User B key generation: 
i. Select privet ng with conditionng <n 
ii. Calculate public pg 


Pp = Ng XG (9) 


— The two sides exchange keys (p4, pg). 
— Calculate of secret key by user A: 


K = n; X Pp (10) 
— Calculate of secret key by user B: 

K = ng X Ppa (11) 
— Convert the packet data to a set of points (Pn). And then use the following encryption eq. for Pn: 

Cm = {kG, Py + kPp} (12) 
— Decryption for Cm, use the following: 

Pat kPa — ng(kG) = P, + k(ngG) — ng (kG) = Py, (13) 


4.2. RSA algorithm 

The original RSA algorithm was publicly illustrated in 1977. This algorithm consists of three stages 
namely key generation, the encryption and finally the decoding stage. RSA is one of the cryptographic 
algorithms, which are a non-symmetric type and thus need a pair of keys, one of which is used for encryption 
and may be non-confidential. The other is the key to decryption, which is private and confidential and 
authorized only to decrypt the data sent. This algorithm employs two large prime numbers, p and q. 
The strength of this scheme is based on the difficulty of finding these large initial numbers that are 
indispensable for finding the secret key while the public key can be freely distributed. The RSA phases and 
steps of each phase are as follow [24]: 
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Key generation algorithm: 

Step 1: Select or generate two large random prime numbers, p and q. 

Step 2: Compute n =p Xq. 

Step 3: Compute Ø = (p — 1)(q — 1). 

Step 4: Select random integer, 1 <e < Ø, such GCD(e,Ø) = 1. 

Step 5: Compute, where d = e~' mod @. 

Step 6: Public Key: (e,n). 

Step 7: Private Key: (d). 

Encryption process: 

Step 1: Suppose entity R needs to send message m to entity S. When m: plaintext. 
Step 2: Entity S should send his public key to entity R. 

Step 3: Entity R will encrypt m as = m°mod n , and will send C to entity S. 
Where C: cipher text. 

Decryption process: 

Step 1: Entity S will decrypt the received message as m = c¢mod n. 


4.3. Data aggregation in a secure environment 

In CCRM-based HWSN, because it receives, processes, and retransmits data. When compared to an 
L-Sensor, an H-Sensor requires more energy. This level attempts to reduce the utilization of the H-energy 
Sensor by allowing it to collect encrypted data from cluster members without having to decrypt it. As a 
result, the attacker will be unable to listen in on data sent between intermediate nodes. As a result, standard 
aggregation approaches provide far less privacy. To do that, we use the RSA encryption's addition 
characteristic. Which allows us to execute arithmetic operations on ciphertext, as it described at previous part 
from this section A. 

In this proposed scheme, each L- sensor senses data m;, and encrypts it with its key ef as shown in 
(14) and sends it to its H-Sensor. Where r is the round index in which the node produced the key e;: 


cj =m;' mod n (14) 


the H-Sensor collects n messages after receiving sensed data and aggregates them by simply adding them up. 
as shown in (15): 


c= rN c= male mê modn (15) 


where |N|is the count of L-sensors in the cluster. After aggregating the data, the final step is to send it to the 
BS. In order to organize the data that has been aggregated, at the end of the message. H-Sensor will attach all 
node indexes. Thus, the final version of the sent ciphertext CT to BS in terms of total size (N * 176 + N * 
13) bits. 


5. SIMULATION PERFORMANCE RESULTS 

The system throughput was used to assess the system's performance, energy consumption and the 
total data rate for sensor nodes rounds [25]. In this section will be describerd the simulation paremeters by 
matlab and implantation these parameters in second part from this section. Simulation Result to compute the 
System Performane to get result better than other methods which compared with proposed method. 


5.1. Simulation analysis setup 

MATLAB R2018a is used to run the simulations. For our suggested technique, 200 L-sensors and 
10 H-sensors are randomly deployed in a topographical dimensional for region (100 m x 100 m). Under the 
chessboard clustering concept H-sensors used the cluster technique, whereas L-sensors were spread around 
them. On the other hand, for heterogeneous sensor networks the costs of an H-sensor and an L-sensor vary 
depending on the type of sensor. The manufacturer, other factors, and this is outside the scope of this paper. 
The simulation runs for 1000 transmission packets (rounds). A single base station gathers data from nodes all 
throughout town (90 m and 90 m). The 20 and 80 meters of detected transmission, respectively, the starting 
energy of all L-sensors and H-sensors is 0.5 and 2.5 J, respectively. All sensors are stationary and their 
locations are known, if adequate energy is available each sensor can communicate directly with the base 
station. The first radio model is used to implement the methods, it is commonly used in WSNs for evaluating 
routing protocols [10]. The network simulation parameters are detailed in Table 1. In addition, while 
constructing the network structure with CC, the nodes are randomly positioned in the field, and the field 
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center is positioned at a random distance from the base station. To assess the network's security and 
efficiency, comparison studies are carried out using several state-of-the-art technologies 


Table 1. Network simulation parameters 


Paremeters Value 
Area of Sensor field (meters) (100 x 100 m) 
Sink location (meters) (90 x 90 m) 
Idle State ener: nJ 
iad 50 ; pit 

Data aggregation ener; n 

ggreg gy BT ie 
Amplification energy d > dy 10 pJ/bit/m? 
H- sensor to base stationd < dọ 0.0013 pJ/bit/m? 
Amplification energy d > dı Efs/10 = Epsy 
L-Sensor to H-Sensor Emp/10 = Empi 


5.2. Simulation results 

In this section, the ECDH-RSA method under CCRM, the mentioned algorithms ECDH and RSA 
which described at (section 4.1 and 4.2) are used to encrypt the transmitted data through that network. In this 
section, the simulation scenarios are really specific to show the effect of encryption operation on the energy 
consumed of the network sensors under the performance of cheeseboard clustering, balancing energy 
consumption by comparing with three methods (Sec-LEACH [26] and SL-LEACH [7], and our proposed). 
Figure 8 depicts the proposed method's flowchart. 


Let: L-sensor indicates to a basic sensor 


node, and H-sensor indicates to the 
Cluster head 


Organize a heterogeneous sensor nodes 
under the chessboard clustering scheme 


L-sensor 
join to H-sensors` 
range 


yes 


ECDH generate public and private keys 
for L-Sensors 


Encryption keys for each L-sensors 1s 
products by combining ECDH keys, 
identification number, and distance to 
its H-Sensors. 


RSA encryption allow each H-Sensors 
to aggregate the encrypted data of its 
member nodes without a decryption 

process. 


Transmission of aggregation data to BS 


Figure 8. Flowchart for proposed method 
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Figure 9 depicts the proposed approach as can be observed, outperforms ECDH-RSA in this area. 
The proposed strategy extended the network lifetime by almost (47% and 35.7%) compared to the (Sec- 
LEACH, and SL-LEACH) security approaches, respectively. Furthermore, as shown in Figure 9, the 
suggested method's number of living nodes is always greater than both Sec-LEACH and SL-LEACH. Table 2 
displays the various time intervals related to the first dead node as determined by the three different 
approaches. Clearly, the time it takes for the first node to die in the suggested technique is much longer than 
in Sec-LEACH and SL-LEACH. 


Table 2. Number of rounds to extend the network lifetime by compute first dead node for different 
approaches 
Approaches Sec-LEACH SI-LEACH _ Proposed 
Lifetime of the first dead node (Rounds) 682 917 1439 


For the three techniques, Figure 10 shows the total energy consumed by a WSN as a function of 
transmission rounds. Because it uses less power and has the longest network lifetime, the suggested method 
outperforms two other ways (Sec-LEACH and SL-LEACH) when the round number in the region grows. 
This suggests that the proposed strategy achieves a better energy balance in a WSN. The Figures 10-12 
shows the energy usage in relation to data rate, simulation rounds, and the number of sensors, respectively. 
When compared to traditional cheeseboard clustering, the energy consumption during encryption is lower. 
Table 3 shows that the suggested method beats existing alternatives in terms of energy usage, data rate, and 
sensor node highest path. When compared to existing ways, we see that the proposed method uses less 
energy. As a result of the increased power consumption, other nodes were subjected to increased load, 
reducing the network life node over time. This resulted in lower power usage and a longer network life. In an 
ideal world, all nodes should have the same amount of leftover energy. 


mis Š 
TDA bee 
0 i ' [inkele m O 5a SS E EE ees 
0 500 1000 1500 2000 2500 3000 0 100 200 300 400 500 600 700 800 900 1000 
Rounds Data Rate (Bit / Sec) 
Figure 9. Lifetime simulation of alive node for Figure 10. Total energy consumed with respect to 
different different three approaches (Sec-LEACH, data rate for different three approaches (Sec-LEACH, 
SL-LEACH, and proposed method) SL-LEACH, and proposed method) 
1 
F 09 A 
T 08 A 
2 06 a 
§ g = 
> 0.5 > Sec-Leach 
© 5 SL-Leach |. 
fr - uo Proposed 
0.3 
Rounds Number of Sensors 
Figure 11. Network energy consumption for Figure 12. Total energy consumed with respect to 
different three approaches (S-LEACH, sec-LEACH, number of sensors for different three approaches 
and proposed method) (Sec- LEACH, SL-LEACH, and proposed method) 
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Table 3. Energy consumption for three approaches (Sec-LEACH, SL-LEACH, and proposed method) 


Method Data Rate Simulation Rounds Sensor Node 
Sec-Leach 13.9 % 25.025 % 14.115 % 
SL-Leach 17 % 23.884 % 16.926 % 
Proposed Method 23 % 18.706 % 20.742 % 


6. CONCLUSION 

Cheeseboard clustering wireless sensor network has an advantage of choosing the proper path for 
transmitting the data from the sensors to the base station. The power consumption of encryption during the 
encryption operation is increased as a tax to make the data transmitted over the network secure. Despite 
significant advances in secure WSN clustering. In this paper, to secure data transmission in HWSNs with 
dynamic clustering, we present a unique encryption schema based on ECDH and RSA encryption. The 
cheeseboard clustering algorithm is used to find the most suitable sensor nodes as H-sensors to relay 
messages to the base station, with the purpose of maximizing the network's lifetime. Then as a result, even if 
the H-sensor is compromised, the attacker will not be able to see anything because the H-sensor is not 
responsible for encrypting signals. In comparison to other ways, the provided results show that this strategy 
enhances network performance in terms of energy usage significantly. 
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